108.138.167.42

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 108.138.167.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20497
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;108.138.167.42.			IN	A

;; AUTHORITY SECTION:
.			131	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040901 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 10 06:24:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

42.167.138.108.in-addr.arpa domain name pointer server-108-138-167-42.dfw56.r.cloudfront.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.167.138.108.in-addr.arpa	name = server-108-138-167-42.dfw56.r.cloudfront.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.236.62.30	attackbots	Triggered by Fail2Ban at Ares web server	2019-10-20 22:03:23
140.249.206.6	attack	Oct 17 04:42:01 vpxxxxxxx22308 sshd[6179]: Invalid user noreply from 140.249.206.6 Oct 17 04:42:01 vpxxxxxxx22308 sshd[6179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.206.6 Oct 17 04:42:03 vpxxxxxxx22308 sshd[6179]: Failed password for invalid user noreply from 140.249.206.6 port 44509 ssh2 Oct 17 04:46:10 vpxxxxxxx22308 sshd[6432]: Invalid user betteti from 140.249.206.6 Oct 17 04:46:10 vpxxxxxxx22308 sshd[6432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.206.6 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.249.206.6	2019-10-20 21:51:12
54.39.98.253	attackbotsspam	Oct 20 15:27:39 SilenceServices sshd[17305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.98.253 Oct 20 15:27:41 SilenceServices sshd[17305]: Failed password for invalid user humid from 54.39.98.253 port 46868 ssh2 Oct 20 15:32:12 SilenceServices sshd[18510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.98.253	2019-10-20 21:36:03
45.148.233.83	attackspambots	45.148.233.83 - - [20/Oct/2019:08:03:10 -0400] "GET /?page=products&action=../../etc/passwd&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17146 "https://newportbrassfaucets.com/?page=products&action=../../etc/passwd&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 22:10:44
106.110.164.150	attackbots	Oct 20 14:00:31 mxgate1 postfix/postscreen[6839]: CONNECT from [106.110.164.150]:5575 to [176.31.12.44]:25 Oct 20 14:00:31 mxgate1 postfix/dnsblog[7125]: addr 106.110.164.150 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 20 14:00:31 mxgate1 postfix/dnsblog[7126]: addr 106.110.164.150 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 20 14:00:31 mxgate1 postfix/dnsblog[7125]: addr 106.110.164.150 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 20 14:00:31 mxgate1 postfix/dnsblog[7125]: addr 106.110.164.150 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 20 14:00:31 mxgate1 postfix/dnsblog[7127]: addr 106.110.164.150 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 20 14:00:37 mxgate1 postfix/postscreen[6839]: DNSBL rank 4 for [106.110.164.150]:5575 Oct x@x Oct 20 14:00:38 mxgate1 postfix/postscreen[6839]: DISCONNECT [106.110.164.150]:5575 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.110.164.150	2019-10-20 22:06:55
92.118.38.37	attack	Oct 20 15:48:03 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:48:23 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:48:58 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:49:33 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:50:08 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-20 21:53:33
185.143.221.186	attackspam	10/20/2019-08:03:28.107362 185.143.221.186 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-20 21:59:29
222.186.173.183	attack	2019-10-20T13:34:53.271387shield sshd\[17070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root 2019-10-20T13:34:55.027936shield sshd\[17070\]: Failed password for root from 222.186.173.183 port 58500 ssh2 2019-10-20T13:34:59.583412shield sshd\[17070\]: Failed password for root from 222.186.173.183 port 58500 ssh2 2019-10-20T13:35:03.687489shield sshd\[17070\]: Failed password for root from 222.186.173.183 port 58500 ssh2 2019-10-20T13:35:07.680525shield sshd\[17070\]: Failed password for root from 222.186.173.183 port 58500 ssh2	2019-10-20 21:38:14
61.95.233.61	attack	Oct 18 09:29:23 myhostname sshd[12238]: Invalid user bula from 61.95.233.61 Oct 18 09:29:23 myhostname sshd[12238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.95.233.61 Oct 18 09:29:24 myhostname sshd[12238]: Failed password for invalid user bula from 61.95.233.61 port 37718 ssh2 Oct 18 09:29:24 myhostname sshd[12238]: Received disconnect from 61.95.233.61 port 37718:11: Bye Bye [preauth] Oct 18 09:29:24 myhostname sshd[12238]: Disconnected from 61.95.233.61 port 37718 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=61.95.233.61	2019-10-20 21:54:26
182.61.179.164	attackspambots	Oct 20 13:58:48 cvbnet sshd[3002]: Failed password for root from 182.61.179.164 port 37350 ssh2 ...	2019-10-20 22:13:42
181.63.245.127	attack	Oct 20 03:38:30 tdfoods sshd\[18547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.63.245.127 user=root Oct 20 03:38:32 tdfoods sshd\[18547\]: Failed password for root from 181.63.245.127 port 11458 ssh2 Oct 20 03:42:55 tdfoods sshd\[18986\]: Invalid user d from 181.63.245.127 Oct 20 03:42:55 tdfoods sshd\[18986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.63.245.127 Oct 20 03:42:57 tdfoods sshd\[18986\]: Failed password for invalid user d from 181.63.245.127 port 15009 ssh2	2019-10-20 21:45:58
182.50.130.2	attackspambots	Automatic report - XMLRPC Attack	2019-10-20 21:42:09
45.80.104.109	attackspambots	45.80.104.109 - - [20/Oct/2019:08:03:33 -0400] "GET /?page=products&action=..%2f..%2fetc%2fpasswd%00&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17152 "https://newportbrassfaucets.com/?page=products&action=..%2f..%2fetc%2fpasswd%00&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 21:57:02
66.85.188.242	attack	Automatic report - XMLRPC Attack	2019-10-20 22:09:40
185.40.12.178	attack	" "	2019-10-20 21:33:02

Recently Reported IPs

108.138.167.109	108.138.167.58	108.138.167.64	108.138.36.116
108.138.36.14	108.138.36.7	108.138.36.87	108.138.7.102
108.138.7.43	108.138.7.45	108.138.7.9	108.156.120.107
108.156.120.122	108.156.120.13	108.156.245.24	109.108.136.73
109.108.139.29	109.108.146.198	109.108.147.128	109.108.147.19